Lucene search

[email protected]NVD:CVE-2006-5172

HistoryJan 16, 2007 - 8:28 p.m.

CVE-2006-5172

2007-01-1620:28:00

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.231 Low

EPSS

Percentile

96.6%

JSON

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the “Mediasvr.exe String Handling Overflow,” a different vulnerability than CVE-2006-5171.

Affected configurations

NVD

Node

broadcombrightstor_arcserve_backupRange≤11.5

broadcombrightstor_arcserve_backupMatch9.01

broadcombrightstor_enterprise_backupMatch10.5

caprotection_suitesMatchr2

References

osvdb.org/31320

secunia.com/advisories/23648

securitytracker.com/id?1017506

supportconnectw.ca.com/public/storage/infodocs/babimpsec-notice.asp

www.iss.net/threats/253.html

www.securityfocus.com/archive/1/456711

www.securityfocus.com/bid/22016

www.vupen.com/english/advisories/2007/0154

exchange.xforce.ibmcloud.com/vulnerabilities/29344

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.231 Low

EPSS

Percentile

96.6%

JSON

Related for NVD:CVE-2006-5172

cve3 cvelist3 nvd2 prion1 nessus1 securityvulns2